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Abstract. We show how to write generic programs and proofs in Martin- 
Lof type theory. To this end we consider several extensions of Martin- 
Lof 's logical framework for dependent types. Each extension has a uni- 
verse of codes (signatures) for inductively defined sets with generic for- 
mation, introduction, elimination, and equality rules. These extensions 
are modeled on Dybjer and Setzer's finitely axiomatized theories of 
inductive- recursive definitions, which also have universes of codes for sets, 
and generic formation, introduction, elimination, and equality rules. Here 
we consider several smaller universes of interest for generic programming 
and universal algebra. We formalize one-sorted and many-sorted term 
algebras, as well as iterated, generalized, parameterized, and indexed in- 
ductive definitions. We also show how to extend the techniques of generic 
programming to these universes. Furthermore, we give generic proofs of 
reflexivity and substitutivity of a generic equality test. Most of the def- 
initions in the paper have been implemented using the proof assistant 
Alfa for dependent type theory. 

Introduction 

The basic idea of generic functional programming is to define generic functions 
by induction on the definition of a data type. A simple example of a generic func- 
tion is Boolean equality: indeed, a generic equality test is provided by languages 
such as SML (where it is built-in) and Haskell (where it is a derivable class). 
More powerful examples include generic map combinators, and generic iteration 
and recursion over inductive datatypes. Generic definitions are highly reusable 
(one definition can be used at many different instances) and adaptive (chang- 
ing a datatype is as easy as changing a parameter), and they are therefore well 
suited for building libraries of programs, theorems and proofs. This research area 
has been explored under different names by Bohm & Berarducci [BB85] (uni- 
versal algebra), by Backhouse et al. [B+91] (Squiggol), by Bird et al. [BdMH96] 
(generic functional programming), by Jay [Jay95,Jay01] (shape polymorphism), 
by Jansson & Jeuring [JJ97,Jan00] (polytypic programming), and by Hinze & 
Jeuring [HJ03] (Generic Haskell). 

A basic example of a dependent type is the type of vectors (lists) Vectn, 
which depends on the length n of the vector. With dependent types we can also 



capture more complex invariants of datastructures, for example, balanced trees, 
binary search trees, AVL-trees, etc. Furthermore, using the Curry-Howard iden- 
tification of propositions and sets, we can in fact express more or less arbitrary 
properties of programs and data structures in dependent type theory. 

Recently several authors [PR99,Ben01,AM02,Nor02] have noted that the 
techniques of generic programming can profitably be expressed in dependently 
typed languages such as Martin- Lof type theory, the Calculus of Constructions, 
and the programming language Cayenne [Aug98]. Combining dependent types 
with the idea of generic programming we can capture a class of datatypes as a 
universe — a set of codes and an interpretation function — and generic functions 
become functions over this universe (functions indexed by these codes). 

In this paper we continue the programme initiated by Pfeifer and Ruefi [PR99] 
of writing generic programs and proofs in dependent type theory. Like them we 
work in a total dependent type theory and use the Curry-Howard identification 
of propositions and types for representing logical notions. (Although they work 
in the impredicative Calculus of Constructions and we in Martin- Lof type theory, 
this difference is not essential in this context.) 

The main contributions of the present paper are the following: 

— We introduce several universes of codes for inductively defined sets. One of 
these (parameterized term algebras) coincides with Pfeifer and Ruefi' uni- 
verse, but we also have universes for indexed inductive definitions (inductive 
families) and generalized (infinitary) inductive definitions, which have not 
been considered before in the context of generic programming. 

— We make a link with the work on extending Martin-L6f type theory with 
general notions of inductive and inductive-recursive definitions. In particular 
we build on the work by Dybjer and Setzer [DS99,DS01] who obtained finite 
axiomatizations of inductive-recursive definitions by introducing a universe 
of codes for such definitions. In this way we get generic elimination rules for 
inductively defined sets which specialize to the standard elimination rules 
for particular sets in Martin-L6f type theory. Our generic elimination rules 
are different from the generic elimination rule used by Pfeifer and Ruefi, and 
closer to the usual elimination rules for inductively defined sets. 

— We give generic proofs of reflexivity and substitutivity of Boolean equality, 
and thus continue the programme of demonstrating that it is possible in 
practice to carry out generic proofs of properties of functions defined on 
generic datatypes. (Pfeifer and Ruefi already gave one example in their paper: 
a generic proof that constructors are injective.) 

— We give a new approach to formalizing universal algebra in dependent type 
theory. We introduce universes for one- and many-sorted term algebras, pa- 
rameterized term algebras, and term algebras with infinitary operations. 

Plan of the paper. We introduce the logical framework in section 1. In sec- 
tion 2 we introduce several different universes corresponding to various interest- 
ing classes of inductive definitions. We begin in 2.1 by introducing a universe 
of signatures for homogeneous term algebras, that is, initial one-sorted algebras 
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Fig. 1. Sections, universes and representative example types. 



over a signature. We also show some generic programs and proofs for one-sorted 
term algebras. After this each section deals with one particular extension of the 
simplest case. Fig. 1 shows the relations between the different universes (an ar- 
row from A to B means that A can be embedded in B). Subsection 2.2 describes 
iterated inductive definitions of algebraic datatypes — one algebraic datatype 
can be used in the definition of another. Subsection 2.3 explores generalized (in- 
finitary) inductive definitions (such as the Brouwer ordinals). Section 3 discusses 
the codes for parameterized datatypes. Much generic programming is concerned 
with parameterized datatypes and we give several examples. Section 4 discusses 
several notions of indexed inductive definitions (inductive families). In 4.1 we 
present our coding of heterogenous term algebras. In 4.2 we introduce a uni- 
verse for finitary indexed inductive definitions. In 4.3 we introduce Dybjer and 
Setzer's theory IID of generalized (infinitary) indexed inductive definitions. We 
conjecture that the universes in Sections 2.1-4.2 are subuniverses of the universe 
of indexed inductive definitions. Finally, in Section 5 we summarize related work. 

Almost all the Alfa-code defining generic functions and universes in this paper 
is available from www.cs.chalmers.se/~patrikj/poly/gendt/. 
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1 The logical framework for dependent types 

Martin-L6f 's logical framework contains inference rules for deriving judgments 
of the following four forms: A Type, A = A', a : A, a = a! : A. Among these rules 
there are rules for dependent function types (x : A) — > B, the type Set of sets, 
and the types El A of elements for each A : Set. 

Here we extend this framework with dependent product types (x : A) x B, 
and the finite types 0, 1, and 2. As usual for logical frameworks, we assume j3 
and ^-equality for dependent function and dependent product. However, we only 
have /3-rules for the finite types. 

The type Set contains sets in Martin-L6f 's sense, that is, inductive data types 
defined by their constructors (introduction rules). We follow the usual convention 
and just write A for E\A (as in universes a la Russell [ML84]). Set is also closed 
under dependent functions, dependent products, and contains (codes for) 0, 1 
and 2. El commutes with all these constructions and we will therefore use the 
same notation for them on the set level as on the type level. 

For a complete description of (essentially) the same logical framework, we 
refer to the appendix of Dybjer & Setzer [DS03a]. 

There are no rules for building sets (inductive datatypes) such as the set of 
natural numbers, sets of lists, vectors, trees, etc included in the logical frame- 
work. This is instead the purpose of the following sections: to give formal rules 
for constructing several different classes of such sets. 

Convenient notation. We drop the type in the fourth form of judgment and 
abbreviate a = a 1 : A by a = a 1 . Lambda-abstraction is written Xx.e as in 
lambda calculus a la Curry. Application is mainly written fe but sometimes 
arguments are put in index position f e . Pairing is written (d, e) with projections 
fst and snd. The sum type A 0 +Ai is implemented as (i : 2) x Ai but injections are 
written Inl, Inr. We have a case analysis construct for which we don't give explicit 
syntax; instead we write definition by cases using pattern matching equations. 

We write Finn for the finite type with n elements denoted by 0, . . . , n — 1. 
Formally, Fin 0 = 1 and Fin (m + 1) = 1 + Fin m. In informal code we use n-ary 
sum types and we write In^ for the i-th injection. 

We use angle brackets for pairing of functions: (/, g) is the function which 
returns the pair (/ x,gx) given the argument x. We also use various common 
notational conventions, including superscripts and and argument-hiding, to im- 
prove readability. 

Although natural numbers, lists and vectors are not part of the logical frame- 
work, we already introduce some notational conventions for them which will be 
used later. We use Nat for natural numbers. We write [A] for the list type, with 
constructors [] and (::) for empty and non-empty lists, respectively. We write X n 
for the type of vectors of length n implemented as X° = 1 and X n+1 = X x X n . 
The informal notation for an element in X n is (x± , . . . , x n ). As a special case the 
unique element in 1 is denoted by (). 
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We can lift a function / : X — > Y to operate on vectors: 



f 0 ' 0 =0 

f n+1 (x,xs) = (fxj n xs) 

When motivating the axioms of the different theories in Sections 2 4 we will 
draw several category-theoretic diagrams. These diagrams should be understood 
informally; the formal axioms are expressed purely type-theoretically. To aid 
the reader in seeing the correspondence between the informal diagrams and the 
formal axioms, we will sometimes keep redundant parentheses in type expres- 
sions, that is, we will sometimes write A — > (B — > C) rather than the usual 
A -¥ B -¥ C. 

2 Inductive definitions 
2.1 One-sorted term algebras 

The simplest class of inductive types is the class of (carriers of) term algebras Ts 
for a one-sorted signature S. This is by no means the first formalization of one- 
sorted algebras in dependent type theory. But we include it here for pedagogical 
reasons and in order to show some interesting generic proofs in a setting where 
they are reasonably easy to grasp. 

A one-sorted signature is nothing but a finite list of natural numbers, repre- 
senting the arities of the operations of the signature. Examples are the empty 
type with So = [], the natural numbers with XWat = [0, 1], the Booleans 
with XbooI = [0;0]; an d binary trees without information in the nodes with 
^Bin = [0, 2]. Lists of Booleans has .^ListBool = [0, 1, 1], since it is generated by 
one constant for the empty list and one Cons for each Boolean: 

NilBool : ListBool 
ConsTrue : ListBool — > ListBool 
ConsFalse : ListBool — > ListBool 

Note however that we cannot code ListNat in this way, because we would then 
need infinitely many constructors. 

Formally we introduce our first universe as the type of signatures Sig = 
[Arity] = [Nat], and the decoding function T : Sig — > Set, which maps a signa- 
ture to (the carrier of) its term algebra. In this first universe we also include 
formation, introduction, (large) elimination, and equality rules for Nat and Sig. 

Generic formation, introduction, elimination, and equality rules. These 
rules are best understood by recalling initial algebra semantics of term algebras 
Ts [GTW78]. Categorically, if F is an endofunctor (sometimes called the "pat- 
tern functor" ) on a category then an F-algebra with carrier X is an arrow 

/ 

FX — >- X 
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Let Fjj be the pattern functor associated with a signature S. Initial algebra 
semantics of the term algebra Tjj states that the F^-algebra 

Intro s 

is initial among F^-algebras, that is, for any other F^-algebra 

F E C 



d 

there is a (unique) arrow iterj; C d which makes the following diagram commute. 

Introj; 

FsTe ►- Ts 



F £ (iter E Cd) 



iter^ C d 



F S C 



The pattern functor Fjj is a functor on a category of types. It has two parts, an 
object and an arrow part: 

F^ : Set ->■ Set 

F^ : (X, Y : Set) -> (X -> Y) -> (F% X -> F^ Y) 

which are defined by induction on S : Sig. We will often suppress the super- 
scripts 0 and 1 and use F both for the object and the arrow part. We will also 
often hide Set-arguments (in this case X and Y). For example, the left verti- 
cal arrow F^iter^ C d) in the commuting diagram above is an abbreviation of 
F^Tz C (iter E Cd). 
Informally, we define 

F [ „ 1 ,...,„ m] X=X" 1 +--- + X"™ 

The formal definition of F^ can be found in Fig. 2 and the formal definition of 
F^ is the following: 

F 1 : (27 : Sig) -¥ (X,Y : Set) -> (X -> Y) -> (F% X -> F° E Y) 
Fj...^ XYf (Inl aw) = Inl (/" aw) 
Fl :S XYf(hny) = Inr (F E XY fy) 

Note that the base case F^ is vacuous, since Fy X = 0. In general, when we 
define a function by pattern matching, if the domain is empty for a certain 
combination of arguments, we don't write out that case. 

Now we get generic rules for the set Ts for each S : Sig, by giving for- 
mal axioms expressing the existence of weakly initial F^-algebras. As usual in 
Martin-L6f type theory, inductively defined sets only have weak (/3-like) rules. 
Full initiality would amount to having strong (jj-like) rules as well. 
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The formation, introduction, and (simplified) elimination rule for Ts are 
expressed as the following three typings of new constants which are added to the 
logical framework from Section 1: 

T E : Set 
Introj; : F S T E -S> T E 
iters : (C : Set) -> {F E C -> C) -> (T £ -> C) 

The generic equality rule is 

iter zCd (Intro ^ x) = d (F% (iters C d) x) 

We call the function argument d to the iterator the step function because it 
takes care of one step of the calculation with iter tying the recursive knot. 

Note that the simplified elimination rule iters captures iteration, rather than 
primitive recursion, and that C is a set rather than a family of sets, as in typical 
type-theoretic rules. The full elimination rule rec^ is defined later in this sub- 
section. Fig. 2 describes in detail the axioms and rules which together with the 
logical framework describes the theory of homogeneous algebras. We can also 
use large elimination, so that C can be a large type, for example, the type Set 
of sets, but we do not write this rule down formally. 

Instances for natural numbers. Here we use the more compact notation Nat = 
[0, 1] for the code for Nat and we note that TNat = Nat. 

l + (Xxl + 0)^l+X 
1 + (Nat x 1 + 0) -> Nat S 1 + Nat -> Nat 
(C : Set) -> (1 + (C x 1 + 0) -> C) -> (Nat -> C) 
(C : Set) -> (1 + C -> C) -> (Nat -> C) 
(C : Set) ->(Cx(C4 C)) -> (Nat -> C) 

As the type of the step function is isomorphic to C x (C — > C) we are in effect 
supplying the iterator with one value for the base case and one function to 
iterate. The usual natural number constructors Zero and Succ can be expressed 
as follows: 

Zero = IntroNat (Inl ()) 

Succn = IntroNat (Inr (Inl (n, ()))) 

If this theory would be used as a base for practical generic programming, then 
the system would automatically extract the code for a datatype and recover the 
usual constructors from the definition of the datatype. 

Examples of generic functions. We define a generic size function and a 
generic equality function. Formally, the generic definitions should be expressed 
using the elimination rules for arities and signatures (see Fig. 3), but in this 
presentation we use pattern matching and explicit recursion for readability. 



F Nat^ = 

IntroNat : 
iter Nat : 
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Arity Type 
Zero : Arity 
Succ : Arity — > Arity 

F ar0 : Arity -> Set -> Set 

■TZero A — 1 

TparO v v . . rparO V 

r Succ m ^ — -A- x r m A 



Sig Type 
[] :Sig 

(::) : Arity -»■ Sig -»■ Sig 

F° : Sig -> Set -> Set 
Ffj X = 0 

F° ::S X = F ar0 X + F°;X 



F arIH : (n : Arity) -> (X : Set) -> F IH : (27 : Sig) -> (X : Set) -> 

(X -> Set) -> F ar0 X -> Set (X -> Set) -> F| X -> Set 

Flero * C 0 =1 F™ s XC(Iidxs) = F arIH ICis 

Flu™ m XC{x,xa) = Cxx F% m XCxs F™ :S X C (Inr y) = F™ XCy 



(C : X -> Set) -> (C : X -> Set) -> 

((i:I)->Ci)^ ((a; : X) -> Cjc) -> 

(» : F»° X) -». F" 1 H Ids (y : F°; X) ^ F™ XCy 

parmap xC7/() =() F™£ XCf (Inl ») = F~ XCfxs 
nTcZ XCf(x,xs) = (fx, F~ XC/8) X C / (Inr y) = F^ ap X C / y 



T : Sig -> Set 

Intro : (17 : Sig) -»■ F^ T s -»■ T s 

rec : (27 : Sig) -> (C : T £ -> Set) -> 

((» : F°; T s ) -». F™ T s C*y -»■ C* (Intro £ y)) -»• 

(x : T s ) -> C*x 
rec s C d (Intros j, ) = d y (F™ ap T s C (rec s C d) y) 



Fig. 2. Axioms for the theory of homogeneous term algebras (large elimination rules 
can be added) 
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recArity : (C : Arity -> Set) -> C Zero -> 

((to : Arity) — » Cm — » C (Succto)) — >■ 
(n : Arity) ->Cn 

recArity C 2 s Zero = 2 

reCArity C « S (SllCC to) = S TO (reCArity CxS to) 

recsig : (C : Sig -> Set) -> C [] -> 

((to : Arity) — » (ms : Sig) -> C ras -> C (m::ms)) — » 

(ns : Sig) — > C ns 
recsig Cnc [] = n 

recsig Cnc (to : : ms) = c to ras (recsig Cnc ma) 



Fig. 3. Elimination rules for arities and signatures. (Again, large elimination rules can 
be added.) 



Generic size. This is obtained as a special case of the initial algebra diagram. 
Let E = [nx,. . .,n m ]. 

T"i _l j. T»™ Intro ^ T 
L s H 1" i- s * i-E 



size'^ 1 H 1- size. 



size .5; 



Nat" 1 + ■ ■ ■ + Nat" m Nat 

sizestep^ 

In our implementation, it becomes 

sizes = iters sizestep^ 
sizestep„. :i; (Inl xs) = 1 + sum„ xs 
sizestep„. :i; (Inry) = sizestep £ y 

where 

sum : (n : Nat) ->• Nat" -> Nat 

is a function summing the elements of a vector of natural numbers. 
For the special case of E = Nat the step function simplifies to 

sizestep Nat : 1 + (Nat x 1 + 0) -» Nat 
sizestep Nat (Inl()) = 1 

sizestep Nat (Inr (Inl (subsum, ()))) = 1 + subsum 

Note that this means that sizen = n + 1 because the generic size counts the 
total number of Intro constructors in n (in this case both Zero and Succ) . 
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Generic equality. A function for testing equality between two values naturally 
has two arguments, while the initial algebra diagram describes functions of one 
argument. Fortunately, the result type can be instantiated freely, so by returning 
a function we can easily simulate a two-argument function. It helps the reading of 
the types below to think about equality as a one-argument function returning a 
recognizer — a predicate which yields true only for values matching its internal 
value. The step function then receives a value containing recognizers for the 
substructures, and returns a recognizer for the top level. We obtain this diagram: 



L s 



eq£ + ■ ■ ■ + eq£ m 



■ + T"" 



Introi; 



(Tje ->• Bool)" 1 + ■ ■ ■ + (Tje ->■ Bool)™" 

where informally (let S = [ni , . . . , n m ]): 
eqstepj; x (Intro y) = recog-allj; T E xy 



eqstepj; 



eq£ 



(T E ->• Bool) 



recog-all^ X : (X ->■ Bool)™ 1 +--- + (X-> Bool)"™ -> 

X ni +■■■+ X n ™ -> Bool 
recog-allj; (In* (pi, . . . ,p ni )) (In* (j/i, . . . ,J/„J)) = Pi J/i A ■ ■ ■ A p„ 4 j/„ 4 
recog-all^ (Irij (pi , . . . , p ni )) (Irij (y x , . . . , y n . ))) = False if i ^ j 

Formally; 

e qi; : T £ -> (T s -> Bool) 
eq £ = iterj; eqstepj; 

eqstep^ : F £ (T £ -> Bool) -> (T £ -> Bool) 
eqstepj; x t = recog-allj; Tj; x (outj; i) 

where outi; : Ts — > FsTs is defined later in this subsection. 

recog -all s : (X : Set) ->F S (X -> Bool) -> F^ X -> Bool 
recog_all„ ::I ; X (Inl/s) (Inl xs) = and_args„ X fs xs 
recog-all^..^ X (Inrx) (Iniy) = recog-allj; X x y 
recog-all„..j; X (Inl/s) (Inry) = False 
recog_all Jj::i ; X (Inrx) (Inl xs) = False 



and.args„ : (X : Set) -> {X -> Bool)™ -> X™ -> Bool 

and_args 0 X () () = True 

and_args TO+1 X (p,ps) (x, xs) = px A and_args TO X ps xs 

If we instead work in the theory of parameterized term algebras (defined in Sec- 
tion 3), the whole definition of recog Jtll^ could be replaced with eqBy E (Xp.Xx.px). 
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Generic induction schema. The elimination rule obtained directly from the 
initial algebra diagram earlier in this subsection only captures definition by it- 
eration. 

We would like a more general Martin-L6f style generic elimination rule, which 
captures proof by induction and definition by primitive (or structural) recursion. 
To do this we consider the following instance of the initial algebra diagram. 
Similar constructions can be found in Coquand & Paulin [CP90] and Dybjer & 
Setzer [DS99,DS03b]. We believe they are essential in practice for doing generic 
proofs. 



F £ (id,reci;C 




F s ((x :T S ) x Cx) {y.FjjTjj) x FfT E Cy (x:T s ) x Cx 



where 

e(y,z) = (Intros y,dyz) 

fy = (y,F™ v T E C(iec s Cd)y) 

In order to get the usual shape of the elimination rule, we have introduced the 
auxiliary constructions 

: (X : Set) -s- (X -s- Set) -s- (F s X -> Set) 



Ff" _ } XC (lni(x u ...,x ni )) = Cxx x ••• x C x ni 



and 



F™ ap : (X 
((x 

{{y 



Set) -> (C : X -> Set) -> 
X) -> Cx) -> 
F^X) ^F^XCy) 



F |^o P ...,n m ] X C / ( Ini (^1 ^ )) = (/ ,...,/ x TC ) 

as in Dybjer & Setzer. Their formal definitions can be found in Fig. 2. 
Hence the elimination rule is 

rec,c : (C:T s -> Set) -> 

{{y ■ F s H s ) -> F™ T s Cy -> C (Intro £ </)) -> 
((x:T r )4Ci) 

The equality rule is 

iec E C d (Intro^ y)=dy (F™ ap T s C (rec £ C d) y) 

As before we may use a large version of this elimination too, where C can be an 
arbitrary family of types, not just a family of sets. 
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Iteration is a special case of recursion. The diagram above only commutes up to 
extensional equality; we do not expect to derive the rules for iecjj from the rules 
for iteijj up to definitional equality, so we add the rules for recj; as primitives. 
Conversely, we can however define iterj; by instantiating iecjj with a constant 
family Xx.C and by ignoring the first argument to the step function. Thus the 
full elimination rule simplifies to the rule for iteration: 

iter^ C de = iecjj (Xx.C) (Xy.d) e 

From this we can derive the equality rule for iterj; up to definitional equality. 

Instances for natural numbers. We first instantiate F IH to the code for Nat: 

: [X : Set) -> (X -> Set) -> (F^X -> Set) 
F^XC(Inl()) = l 
F^XC(Inr(Inl(x,())))=Cx 

Then, by simplifying the type of the step function in recNat , we see that the step 
function contains the familiar base case and induction step from induction on 
natural numbers: 

(y : 1 + Nat) -> F^Nat Cy -> C (IntroNat y) 

— By case analysis 

((u : 1) -> NatC(Inlu) -> C (IntroNat (Inlu)))x 
((n : Nat) ->■ F^ t Nat C (Inrn) ->• C(Intro Nat (Inrn))) 
= Use definition of F IH 

(1 -> 1 ->■ C (IntroNat (Inl ()))) x 

((n : Nat) -> Cn -> C (Intro Nat (Inrn))) 

— Simplify and use definitions of Zero and Succ 
CZero x ((n : Nat) -> Cn -s> C(Succn)) 

Thus the type of recNat is (isomorphic to) the following: 

recNat : (C : Nat -> Set) -> C Zero -> 

((n : Nat) -> C ' n -> C (Succ n)) ->■ 
((x : Nat) ->Ci) 

Note that this is exactly the type of the elimination rule for arities in Fig. 3. 

Generic destructor. As a simple example of using rec we can define the generic 
destructor 

oat s : Tje -> FjsTjs 

outs x = rec£ (Ax.F^Ti;) (Xyz.y) 

In effect, the destructor gives us pattern matching on Introj; as we can see by 
specializing the equality rule for recj;: 

out£ (Introj; x) = x 
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Generic proof of reflexivity of equality To state the reflexivity we need to 
convert Boolean truth values to propositional truth values. This can also be seen 
as a universe construction — the Booleans are codes for (just) the two types 0 
and 1: 

| ■ | : Bool ->■ Set 
|False| = 0 
|True| = 1 

Boolean "and" can be lifted to the type level: (only this one case is inhabited) 

liftAnd : (a, b : Bool) -» \a\ -» |6| -> \a A 6| 

liftAnd True True () () = () 

When this lemma is used, the first two parameters will be omitted for brevity. 
We first define two convenient abbreviations: 

rel : Set — > Set 

rel X = X -> X -> Bool 
lref : (X : Set) -> rel X -> X -> Set 
lref X rx = \rxx\ 

where the first argument to lref will be hidden for brevity. The proof structure 
follows the same structure as the definition of equality. The top level proof is 
defined using the recursor: 

ref.eq^ : (t : T s ) ->■ \eq s tt\ 

ref.eqj; = recx; (lref eq s ) (ref-consi; Tjj eq s ) 

The next step, ref.cons, discriminates between the constructors: 

ref _consi; : (X : Set) — > (e : rel X) — > 

(x :F S X)^- (F™ X (lref e) x -> |recog jaR E X (F^ e x) x\) 
ref_cons„ :: i; X e (Inlxs) = ref _args„ X e xs 
ref_cons„ :: i; X e (Inry) = ref-consj; X e y 

Finally, ref_args handles the arguments to the constructor: 

ref_args„ : (X : Set) -> (e : rel X) -> 

(xs : X n ) — > (lref e)" xs — > |and_args„ X (e™ xs) xs\ 
ref _args 0 X e () () = () 

ref _args TO+1 X e (x, xs) (ih, ihs) = liftAnd ih (ref_args TO X exs ihs) 

The substitutivity theorem for generic equality says that if two element are 
tested equal then they are indistinguishable: 

subst-eqj; : (a : T s ) -> (b : T s ) -> \eq E ab\ -> EQ Ts ab 

where EQ x xy = (P : X — > Set) — > Px — > Py. The proof of this theorem 
follows exactly the same pattern as the proof of reflexivity and can be found on 
this paper's home page. Combining the generic definitions of equality, reflexivity 
and substitutivity we obtain a generic datoid-definition. 
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2.2 Iterated induction 

The one-sorted term algebras provide a quite limited class of inductive datatypes 
for programming. A first generalization is to admit iterated induction, that is, in 
an introduction rule (typing rule for a constructor) we can refer to a previously 
defined datatype. For example, to define the set of lists of natural numbers 
ListNat, we refer to the set of natural numbers: 

NilNat : ListNat 
ConsNat : Nat ->• ListNat ->• ListNat 

To obtain this class of iterated inductive definitions, we redefine the type of 
signatures 

Sig = [Arity] 

where an arity now is defined by the following inductive definition: 

Nil : Arity 
Rec : Arity — > Arity 
NonRec : Sig — > Arity — > Arity 

(As always, we include elimination and equality rules for arities and signatures 
here too.) 

Note that for one-sorted term algebras, an arity was just a natural number, 
that is, essentially something generated by Nil and Rec. Here we have added a 
new constructor NonRec for a non-recursive argument of a constructor. (A non- 
recursive argument is often called a side-condition.) If NonRec is applied to a 
signature S it means that the non-recursive argument ranges over the previously 
defined type Tjj. 

For example, lists of natural numbers have a signature 

^ListNat = [Nil, NonRec S Nat (Rec Nil)] 

where S Nat = [Nil, Rec Nil]. 

The generic type-theoretic rules for iterated induction are the same as before, 
except that we need to extend the definitions of the pattern functor to the case 
of NonRec: 

F[ai,...,a„] X = F™ 1 X + ... + F* r n X 
F^X = 1 

F Rec a X = X X F « X 
F NonReci: a X = T S xF a X 

As an example we instantiate the definition of F to obtain the expected pattern 
functor for ListNat: 

F Lis tNat X = 1 + (Trjat x (X x 1) + 0) ~ 1+ Nat x X 

We can now define generic size and equality functions for all sets defined by 
the class of iterated inductive definitions given in this section — the Alfa-code 
is available on the paper's home page. 
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Remark. Note that ListNat was the type of signatures for one-sorted algebras 
in the previous section. So having extended the notion of signatures we can 
define the family of term algebras for S : Sig as an internal family in the 
extended theory. Even more, we can (using extensional equality) derive the rules 
for one-sorted term algebras from the rules for iterated inductive definitions. 

2.3 Infinitary induction 

So far we have considered ordinary (or finitary) inductive definitions, that is, 
we have only considered finite arities. We can consider a notion of one-sorted 
algebras which allows infinitary operations, by changing the notion of a signa- 
ture from a list of natural numbers to a list of sets. (Gratzer's book "Universal 
Algebra" [Gra79] is in fact about universal algebras with possibly infinitary op- 
erations, although working in classical set theory, his arities are possibly infinite 
ordinal numbers.) 

We keep Sig = [Arity] as in the homogeneous case, but we change Arity to 
be Set and modify the pattern functor: 

F[/i,...,/ m ] X = (h -> X) + ■ ■ ■ + (I m -> X) 

For example the signatures for the empty type, the unit type, natural num- 
bers, and the Brouwer ordinals O can be expressed as follows 

£o = [] 
Si = [0] 

^Nat = [0, 1] 

The Brouwer ordinals are sometimes called the second number class. We can 
define the third number class by having an operation with arity O, and so on 
for the higher number classes. 

We cannot define decidable equality over the class of generalized inductive 
definitions. However, we have the following generic definition of a propositional 
extensional equality: 

eq^ : T s -> Tjj -> Set 

eq s = iteiE eqstepj; 
eqstep £ : F S (T S -> Set) -* -> Set 
eqstepj; ps x = recog-allj; ps (outs x) 

where 

recog-all^ : (T E -> Set) -> F s T s -> Set 
recog-all/..^ (Inl/) (Inlx) = (i : I) — > / i(xi) 
recog-allj.. £ (Inr<?) (Inr j/) = recog_all £ g y 
recog-allj.^ (Inl/) (Inry) = 0 
recog-all/..^ (Inr g) (Inlx) = 0 
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An interesting variation of this universe for infinitary inductive definition is 
obtained if we restrict branching to range over sets of the form T^. Then we get 
the following notion of signature: 



Sig = [Arity] 
Arity = Sig 

If we present this definition with constructors (using the isomorphism between 
finitely branching trees and binary trees) we get 

Nil : Sig 

Rec : Sig — > Sig — > Sig 

The pattern functor is: 

F [Sl ,..., Sm ] X = (T El -> X) + ■ ■ ■ + (T Em -» X) 
In this setting we have 

50 = [] 

5 1 = [S 0 ] = [[]] 

S Nat = [So, Si] = [[],[[}}} 
So = [So, = [[],[[]], [[],[[]]]] 

Note that neither of these two variants of universes for infinitary induction 
can capture iterated induction in the sense of 2.2. The branching (the number 
of arguments to one constructor) can be infinite here but the arity (the number 
of constructors) is finite. But we could also add a constructor NonRec for side 
conditions and thus combine infinitary and iterated induction into one universe. 

3 Parameterized term algebras 

So far we have only considered constant term algebras, that is, Ts is a con- 
stant set. However, many interesting generic functions range over parameterized 
types. We therefore extend our notion of signature to account for parameters. 
The decoding function thus takes a signature and returns a parameterized term 
algebra, that is, it is a function 

T : Sig -> (Set -> Set) 

For simplicity, we present a universe for one-sorted term algebras with parame- 
ters - essentially the same as the one introduced by Pfeifer & Ruefi [PR99]. If we 
add iterated induction we obtain the case considered in Jansson & Jeuring [JJ97]. 
It is of course also possible to consider parameterized infinitary induction. 

Parameterized term algebras are term algebras which depend on one or sev- 
eral parameter types. We consider here the case of one parameter for simplicity. 
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Examples of parameterized term algebras are the type [A] of lists of parameter 
type A with constructors 

[}:(A:Set)^[A] 
(::) : (A : Set) -> A -> [A] -> [A] 

and the set Maybe ^4 with constructors 

Nothing : (A : Set) -> Maybe A 

Just : (A : Set) -> A ->■ Maybe 4 

T/ie universe construction. Compared with the homogeneous case we add a new 
constructor, Par, for arities 1 

Nil : Arity 
Rec : Arity — > Arity 
Par : Arity — > Arity 

The signature for parametric lists [A] and for Maybe A are then 

£ N = [Nil, Par (Rec Nil)] 
^Maybe = [Nil, Par Nil] 



The initial algebra diagram for iteration now needs to take parameters into 
account: 

^ , ,™ . % Introu A m 
F s A (T s A) ► T E A 



F s A(itei s ACd) 



iters ACd 



F E AC 



C 



We extend the definition of the pattern functor to the case of parameters: 

F$ aia AX = AxF™AX 
The diagram for induction is modified accordingly. 



1 This gives us a notion of unary parameterized term algebra; it is straightforward to 
generalize this to n-ary parameterized algebras by instead having 



Par : Fin n — > Arity n — > Arity n 
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Generic programs for parameterized types. As already mentioned, parameterized 
term algebras are almost as powerful as the universe used in PolyP [JJ97]. In 
fact, it is sufficiently close to PolyP that the majority of the polytypic library 
functions [JJ98] carry over immediately. 

When we consider a universe with parameterized types, many natural generic 
definitions share a common pattern: they lift a function from the parameter level 
to the parameterized type level. To show this pattern we introduce a few type 
synonyms and use these in the type signatures for (generic) size, equality, map 
and zip. (Here A,B,C : Set.) 

Size A = A -> Nat 

Eq A = A -> A -> Bool 

Map A B =A^B 

Zip ABC = A^B^ Maybe C 

sizeBy^ : {A : Set) -S> Size A ->• Size (T s A) 

eqBy s : (A : Set) -> Eq A -> Eq (T E A) 

map £ : (A,B: Set) -> Map A B -> Map (T E A) (T E B) 
zipWith^ : (A, B, C : Set) -> Zip A B C -¥ Zip (T E A) (T E B) (T E C) 

All these functions are straightforward to implement over this universe, see the 
code on the paper's home page. 

The application zipWith^ op x y succeeds iff x and y have the same structure 
and op succeeds for all pairs of corresponding elements. The result has the same 
structure as x and y and contains the results from the successful applications 
of the operator op. The general type of function zipWith^ is best explained 
through its instances. With C = A x B we obtain the familiar zip function from 
generic functional programming: 

zip £ : (A, B : Set) -> Zip A B (A x B) 
zip £ A B = zipWith^ A B (A x B) (Ax y. Just (x, y)) 

With C = 1 we note that Maybe 1 = Bool and thus, the parameterized equality 
test eqBy E can also be seen as a special case of zipWith^: 

Eq.4 = A -s> A -> Bool = A -> A -> Maybe 1 = Zip A A 1 
eqBy £ A ~ zipWith^ AA1 

4 Indexed inductive definitions 
4.1 Many-sorted term algebras 

First we shall consider the special case of many-sorted term algebras, giving rise 
to a simple class of mutually inductive definitions. See also Capretta [Cap99] 
for some other approaches to defining many-sorted term algebras in dependent 
type theory. This is the main class of term algebras considered in algebraic 
specification theory, following the work by the ADJ-group [GTW78]. 



18 



For simplicity we first consider many-sorted algebras with finitely many sorts, 
and no parameters (it is easy to add them). Note that the iterated inductive 
definitions in section 2.2 are subsumed by the mutual inductive definitions here. 

The type of signatures for n-sorted algebras is now 

Fin n — > Sig„ where Sig„ = [Arity„] and Arity„ = [Fin n] 

That is, a signature consists of n lists of arities, one for each sort. An arity is a 
list of numbers < n, denoting the sorts of the arguments of an operation. 

As a simple example, consider the following mutual definition of the even 
and odd numbers: 

SuccEven : Even -> Odd 

Zero : Even 
SuccOdd : Odd -> Even 



The many-sorted signature is 



SO =[[1]] 

£i = [[].[o]] 

Another example is the mutual inductive definition of trees and forests. More 
generally, abstract syntax trees for context-free grammars are many-sorted alge- 
bras. 

The diagram for initial n-sorted algebras is 



Intro„,j;i 



F n> s (iter„ £ d) i 



iter„ s di 



a 



di 



Ci 



where i : Finn. 

We neither display the diagram for the full elimination (induction) rule which 
is similar to the one for the non-indexed case 2.1, nor give the definition of generic 
size and equality. Instead we move on the the more general case of inductive 
families. 



4.2 Finitary indexed induction 

In this section we consider a bigger class of finitary indexed inductive definitions. 
For simplicity, we choose to present the class of restricted indexed inductive 
definitions, rather than the class of general indexed inductive definitions, in 
the sense of Dybjer & Setzer [DS01]. To explain the difference we consider the 
Nat-indexed inductive definition of vectors (with elements of some fixed set A 
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for simplicity). This is most naturally presented as a general indexed inductive 
definition: 

NilV : Vect 0 

ConsV : (n : Nat) -> (x : A) -» Vect n -» Vect (Succ n) 

We can reformulate this as a restricted indexed inductive definition, by employ- 
ing an equality test for natural numbers: 

NilV : (m : Nat) -> (m = 0) -> Vect m 
ConsV : (m : Nat) -» (n : Nat) -> (m = Succn) -t (x : A) -t Vectn -> Vectm 

Restricted indexed inductive definitions require that the index in the result type 
is a variable. 

Restricted indexed inductive definitions have some theoretical and practical 
advantages, but the drawback is that they give rise to longer and less natural 
formulation of the rules. The reader is referred to Dybjer & Setzer [DS01] for 
more discussion. 

The universe construction. We define the universe I — > Sigj for restricted I- 
indexed inductive definitions: 

Nil : Sigj 

NonRec : {A : Set) -> (A -> Sigj) ->■ Sigj 
Rec : I -» Sigj -» Sigj 

Here Nil represents the base case — an inductive definition with no premise; 
NonRec represents the non-recursive case — adding a side condition a : A; and 
Rec represents the recursive case — adding a recursive premise. 

Note that arities and signatures have been fused into one code type: Sigj. 
The added power in the NonRec case can be used to build up what corresponds 
to the list of arities in simpler universes. A choice between n constructors can 
be coded by NonRec (Fin n) constrs where constrs : Fin n — > Sigj gives the arity 
for each constructor. 

An inductive family is a simultaneous definition of an indexed family of 
datatypes. In the special case when the set is finite the family can be coded as 
a group of mutually recursive datatypes, that is, as a many-sorted term algebra 
(Section 4.1). We get n-sorted algebras if I = Finn, if arities are only built up 
by Nil and Rec, and where NonRec is used at the top level for building up lists 
of arities. 

To define the object part of the pattern functor 

F/,je : (J -¥ Set) ->(/-> Set) 

for S : I — > Sigj on the category of /-indexed families of sets, we introduce an 
auxiliary operator 

G /)7 : (J -s> Set) ->■ Set 
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for 7 : Sigj. Then 



Fj jj X i — Gi^siX 



and G 7 is denned by induction on 7 : Sigj: 



G/,Nil X 

G I ,Nonftec A <j> X 
Gj,Recii; X 



(x : A) x G I}(j>x X 
Xi x G I>S X 



1 



The initial algebra diagram looks the same as in the many-sorted case. The 
type-theoretic rules are (with S : I — > Sigj): 

T I>S : 7 -> Set 
Intro/^ : (i : I) ->• F I:S T I>S i ->• Tj^ i 
iter/,2; : (C : 7 -> Set) -> ((i : 7) -> Fj ii; Ci -> Ci) -> ((i : 7) -> T/^i -> Ci) 
iec ItE :(C:(i:I)-> T I>S i -> Set) 

-»■ ((» : 7) -»■ (2/ : F /|2 ; T,^ i) -»■ F 1 ^ Tj^Ciy -»■ Ci (Intro/^ i j/)) 
-> ((i : 7) -> (a; : Tj^i) -> Cix) 

There are also equality rules that we do not display here. 

A code for binary search trees. An example of an inductive family is the family 
of binary search trees, indexed by pairs of natural numbers (the lower and upper 
bound): 

BST : Nat x Nat -> Set 

The introduction rules are 

Leaf 0 : (lb, ub : Nat) -> (lb < ub) -> BST (lb, ub) 
Nodei : (lb, ub : Nat) -» (root : Nat) -> (lb < root) -> (root < ub) -» 
-> BST (lb, root) -> BST (root, ub) -> BST (lb, ub) 

Written as "arities" they become 

arityBST (lb, ub) 0 = NonRec (lb < ub) (Ap.Nil) 
arityBST (lb, ub) 1 = NonRec Nat (Xroot. 



Thus the signature for the family BST becomes the family of codes SbsT- 



NonRec (lb < root) (Xpi . 
NonRec (root < ub) (Xp2- 
Rec (lb, root) (Rec (root, ub) Nil)))) 



Zest : N »t x Nat -> Sig NatxNat 

•^bst = Xbounds. NonRec 2 (arityBST bounds) 
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Indexed generic functions. We can now write a generic size function (or rather, 
an indexed family of size functions) over this universe 

sizej^ : (i : I) -> T I}S i -» Nat 

However, to define equality 

ec li,£ : (i : -0 -> T/,£ i -> i -> Bool 

we need to restrict NonRec by allowing it to range only over sets with decidable 
equality (so called datoids): 

NonRec : (D : Datoid) -> (\D\ -> Sigj) -> Sigj 

where \D\ is the carrier of the datoid D. 

We have also added parameters to our universe for finitary indexed inductive 
definitions and been able to extend the definition of zipWithj E from section 3. 
We refer to the Alfa-implementation on the home page for details. 

4.3 Infinitary indexed inductive definitions 

In each of sections 2.1-4.2 we have presented a universe consisting of a set 
(family) of signatures and for each signature a term algebra. Each section defines 
a theory (a version of Martin-L6f type theory with a particular collection of 
inductive definitions) by adding some constants (with their types) and equations 
to the logical framework from section 1. The theory for one-sorted term algebras 
is given in Figure 2, and each of the other theories can be obtained by changing 
the axioms as described in the respective (sub)sections. In each of these theories 
we can write generic programs and proofs by induction on the signature. The 
idea is to choose a universe of signatures which is appropriate for a particular 
application. 

However, each time we change universe we also change theory. This is of 
course unsatisfactory - we would like to be able to do generic programming 
over different universes in one theory. So we would like to have a large theory 
which can swallow all the previous theories. For this purpose we could use the 
the theory of indexed inductive-recursive definitions IIR ext (with extensional 
equality) given by Dybjer and Setzer [DS01]. In this theory we conjecture that 
all of our universes can be defined. To actually work out these embeddings in 
detail is however a task outside the scope of this paper. 

In fact, since induction-recursion does not play a role in this paper, it suffices 
with the theory of indexed inductive definitions IID ext (with extensionality) . 
IID is a natural upper bound of the theories presented in sections 2.1-4.2. 

IID is just like the theory of finitary indexed inductive definitions in the 
previous subsection, except that we now have infinitary inductive definitions. 
Formally, this means that we generalize the case of a recursive premise. It be- 
comes 

Rec : (A : Set) -> (A -> I) -> Sigj -> Sigj 
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where the definition of G for the recursive case becomes 

GnecAi-yX = ((x : A) ->X(ix)) x G 7 X 

As an example of an infinitary indexed inductive definition we consider the 
accessible (or well-founded) part of a relation < on a set I. The formation and 
introduction rules are 

Acc : I -> Set 

Acclntro : (i : I) -> ((j : I) -» (j < i) -> Acc j) -» Acci 
The signature for Acc is 

£acc : I -> Sigj 

E Acc = Ai.NonRec ((j : I) x (j < i)) fst Nil 

We refer to [DS01,DS03a] for a full explanation of the theory IIR (and thus 
implicitly of its subtheory IID). 

IID is a suitable general framework for generic programming, since we con- 
jecture that the theories in Sections 2.1-4.2 are definable in IID in the following 
senses. (We have however not yet given a a rigorous proof of this conjecture.) 
Firstly, the set of signatures for one-sorted algebras (possibly with iterated in- 
duction) has a code in Sig 1 in IID ext . Moreover, each signature for one-sorted 
algebras can be mapped to a signature in Sig 1; and the decoding function can be 
obtained by composing the decoding function for Sig 1 with this map. Further- 
more the set of signatures for parameterized term algebras also has a code in 
Sig-^ Here a code in can be mapped to a function Set — > Sig 1; and the decoding 
can again be obtained by composing the decoding function for Sig 1 with this 
map. We conjecture that similar embeddings can be done also for the theory of 
many-sorted term algebras and for the theory of finite indexed inductive defi- 
nitions. The situation with infinitary induction in section 4.2 is similar to the 
situation with one-sorted algebras, except that as it stands the type of signatures 
is here a "large" inductive definition, since it has a constructor which refers to 
Set. This size problem can be solved if we replace the current large inductive 
definitions with an analogous small one. 

5 Related work 

PolyP and Generic Haskell. PolyP [JJ97] as in "polytypic" (= generic) program- 
ming, is an extension of Haskell. Polytypic functions are defined by induction 
on a universe of codes for "regular datastructures" (roughly the universe of our 
section 3). 

In Generic Haskell [HJ03] (the successor of PolyP) the universe is generalized 
to include mutually recursive and nested datatypes, as well as datatypes with 
parameters of higher kinds. This allows the full class of Haskell datatypes to be 
expressed but also restricts the set of definable generic functions. (The function 
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subterms : Tjj — > [Tu] is an example of a function which Generic Haskell cannot 
define simply because the concept of subterm is not meaningful for this general 
class of datatypes.) 

Many datatypes with invariants can be simulated in Haskell using nested and 
datatypes with parameters of higher kinds, but these types can be more directly 
expressed using dependent types. 

Combining dependent types and generic programming. The research on this topic 
comes from two different directions. On the one hand Altenkirch and McBride 
[AM02] and Norell [Nor02] show how to encode Generic Haskell-style program- 
ming using dependent types. Here the setting is that of general recursive func- 
tional programming where the class of recursive datatypes includes for example 
nested datatypes. 

On the other hand the work of Pfeifer and Ruefi [PR99] and Benke [BenOl] are 
about extending the technique of generic programming to "total" type theories 
such as the Calculus of Construction and the Alfa proof assistant respectively. 
The idea here is to stay within a logical system based on the Curry-Howard 
isomorphism. Therefore the type system ensures that all programs terminate by 
only allowing restricted forms of recursion. In this setting we can both write 
generic programs and write generic proofs of properties of those programs. In 
fact, experiments of one of the authors [Ben02] show that generic proofs of 
equality properties, such as equivalence, decidability and substitutivity can be 
actually simpler than the corresponding non-generic proofs. 

The present paper continues the programme set out by Pfeifer and RueB. 
Firstly, we introduce several universes of codes for inductive datatypes of in- 
terest for generic programming and universal algebra. One of them is Pfeifer 
and RueB' universe of parameterized term algebras. Others include universes 
for infinitary inductive types and inductively defined families, neither of which 
have been considered for generic programming before. Furthermore, Pfeifer and 
RueB only had one generic proof about a datatype: a proof that constructors 
are injective. We have worked out some more examples: proofs of reflexivity 
and substitutivity of generic equality. As the reader has seen, these proofs are 
non-trivial! To facilitate generic proofs we provide an elimination constant which 
captures primitive recursion rather than iteration. 

Inductive definitions in dependent type theory We also connect work on induc- 
tive definitions in type theory with work on generic programming. Although the 
papers by Dybjer and Setzer [DS99,DS03b,DS03a] contain related ideas, and in 
particular give generic formation, introduction, elimination, and equality rules 
for inductive-recursive definitions, they do not discuss the connection with prac- 
tical generic programming - the generic programs and proofs in their papers 
have meta-theoretic rather than practical interest. Furthermore, for the purpose 
of practical generic programming the universe of inductive-recursive definitions 
is too large. (Not even Boolean equality can be defined over that universe.) This 
is the reason why we introduce several smaller subuni verses of inductive types. 
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Universal algebra in dependent type theory. Bayley [Bay98] and Ruys [Ruy99] 
formalized one-sorted term algebras in dependent type theory. Capretta [Cap99] 
proposed several ways to formalizing many-sorted term algebras, including using 
Petersson-Synek trees [PS89] and extending dependent type theory with so called 
recursive families of inductive types. 
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